Fix CI workflow and code quality issues

- Fix safety CLI command in workflow (use --output json --save-json)
- Update Codecov upload to use 'files' parameter instead of 'file'
- Update Allure CLI to latest version (2.27.0) in workflow
- Fix all flake8 code quality issues:
  * Remove unused imports in conftest.py
  * Fix blank line spacing issues across test files
  * Fix long lines in test assertions
  * Remove unnecessary f-string placeholders
  * Ensure all files end with newlines
- Maintain proper PEP8 compliance across codebase

Author: SaahilParmar

.github/workflows/ci.yml

@@ -58,7 +58,7 @@ jobs:
     - name: Upload coverage to Codecov
       uses: codecov/codecov-action@v5
       with:
-        file: ./coverage.xml
+        files: ./coverage.xml
         flags: unittests
         name: codecov-umbrella
 
@@ -73,9 +73,9 @@ jobs:
       run: |
         sudo apt-get update
         sudo apt-get install -y default-jre
-        curl -o allure-2.13.8.tgz -Ls https://github.com/allure-framework/allure2/releases/download/2.13.8/allure-2.13.8.tgz
-        sudo tar -zxvf allure-2.13.8.tgz -C /opt/
-        sudo ln -s /opt/allure-2.13.8/bin/allure /usr/bin/allure
+        curl -o allure-2.27.0.tgz -Ls https://github.com/allure-framework/allure2/releases/download/2.27.0/allure-2.27.0.tgz
+        sudo tar -zxvf allure-2.27.0.tgz -C /opt/
+        sudo ln -s /opt/allure-2.27.0/bin/allure /usr/bin/allure
         allure --version
         
     - name: Generate Allure HTML report
@@ -123,7 +123,7 @@ jobs:
       run: bandit -r . -f json -o bandit-report.json || true
 
     - name: Run Safety check
-      run: safety check --json --output safety-report.json || true
+      run: safety check --output json --save-json safety-report.json || true
 
     - name: Upload security reports
       uses: actions/upload-artifact@v4
@@ -183,9 +183,9 @@ jobs:
       run: |
         sudo apt-get update
         sudo apt-get install -y default-jre
-        curl -o allure-2.13.8.tgz -Ls https://github.com/allure-framework/allure2/releases/download/2.13.8/allure-2.13.8.tgz
-        sudo tar -zxvf allure-2.13.8.tgz -C /opt/
-        sudo ln -s /opt/allure-2.13.8/bin/allure /usr/bin/allure
+        curl -o allure-2.27.0.tgz -Ls https://github.com/allure-framework/allure2/releases/download/2.27.0/allure-2.27.0.tgz
+        sudo tar -zxvf allure-2.27.0.tgz -C /opt/
+        sudo ln -s /opt/allure-2.27.0/bin/allure /usr/bin/allure
         allure --version
 
     - name: Generate test documentation

conftest.py

@@ -1,7 +1,7 @@
 import pytest
 import allure
-import requests
-from utils.api_utils import load_config, log_request_response
+from utils.api_utils import load_config
+
 
 @pytest.fixture(scope="session")
 def config():
@@ -10,6 +10,7 @@ def config():
     """
     return load_config()
 
+
 @pytest.fixture(scope="session")
 def base_url(config):
     """
@@ -18,6 +19,7 @@ def base_url(config):
     env = config["env"]
     return config["environments"][env]["base_url"]
 
+
 @pytest.fixture(scope="function")
 def driver():
     """
@@ -29,6 +31,7 @@ def driver():
     # We keep this fixture placeholder in case future tests integrate with UI.
     yield None
 
+
 @pytest.fixture(autouse=True)
 def attach_allure_logs(request):
     """
@@ -51,6 +54,7 @@ def attach_allure_logs(request):
                 attachment_type=allure.attachment_type.TEXT
             )
 
+
 def pytest_configure(config):
     """
     Pytest hook to customize test configuration.
@@ -65,9 +69,9 @@ def pytest_configure(config):
     # Create reports directory if it doesn't exist
     import os
     os.makedirs("reports", exist_ok=True)
-    
+
     # Create Allure environment properties file for reporting context
     with open("reports/environment.properties", "w") as f:
         f.write(f"BaseURL={load_config()['environments'][load_config()['env']]['base_url']}\n")
         f.write("Framework=API Test Automation\n")
-        f.write("Language=Python\n")
+        f.write("Language=Python\n")

monitor_workflow.sh

@@ -0,0 +1,59 @@
+#!/bin/bash
+
+# GitHub Actions workflow monitoring script
+echo "🔍 Monitoring GitHub Actions workflow status..."
+
+# Function to get latest workflow run status
+get_workflow_status() {
+    curl -s -H "Accept: application/vnd.github.v3+json" \
+        https://api.github.com/repos/SaahilParmar/API-Test-Automation-Framework/actions/runs?per_page=1 | \
+    python -c "
+import sys, json
+try:
+    data = json.load(sys.stdin)
+    if data['workflow_runs']:
+        run = data['workflow_runs'][0]
+        print(f'📊 Run #{run[\"run_number\"]} - {run[\"display_title\"]}')
+        print(f'📅 Status: {run[\"status\"]}')
+        if run.get('conclusion'):
+            conclusion = run['conclusion']
+            emoji = '✅' if conclusion == 'success' else '❌' if conclusion == 'failure' else '⚠️'
+            print(f'{emoji} Conclusion: {conclusion}')
+        print(f'🔗 URL: {run[\"html_url\"]}')
+        print(f'⏰ Started: {run[\"run_started_at\"]}')
+        print(f'📝 Commit: {run[\"head_sha\"][:8]}')
+    else:
+        print('❌ No workflow runs found')
+except Exception as e:
+    print(f'❌ Error: {e}')
+"
+}
+
+# Monitor for up to 5 minutes with 30-second intervals
+echo "⏱️  Monitoring for up to 5 minutes (30-second intervals)..."
+echo ""
+
+for i in {1..10}; do
+    echo "🔄 Check $i/10:"
+    get_workflow_status
+    echo ""
+    
+    # Check if workflow is complete
+    status=$(curl -s -H "Accept: application/vnd.github.v3+json" \
+        https://api.github.com/repos/SaahilParmar/API-Test-Automation-Framework/actions/runs?per_page=1 | \
+        python -c "import sys, json; data=json.load(sys.stdin); print(data['workflow_runs'][0]['status'] if data['workflow_runs'] else 'unknown')")
+    
+    if [ "$status" = "completed" ]; then
+        echo "🎉 Workflow completed!"
+        break
+    fi
+    
+    if [ $i -lt 10 ]; then
+        echo "⏳ Waiting 30 seconds before next check..."
+        sleep 30
+    fi
+done
+
+echo ""
+echo "📋 Monitoring complete. Check the GitHub Actions tab for detailed logs:"
+echo "   https://github.com/SaahilParmar/API-Test-Automation-Framework/actions"

tests/test_api_validation.py

@@ -30,25 +30,26 @@ def test_headers_validation():
     with allure.step("Send GET request to users endpoint"):
         url = f"{BASE_URL}/users?page=1"
         response = requests.get(url, headers=get_headers())
-        
+
     with allure.step("Verify response status is 200"):
         assert response.status_code == 200
-        
+
     with allure.step("Validate Content-Type header"):
         assert response.headers["Content-Type"].startswith("application/json")
-        
+
     with allure.step("Validate response headers are present"):
         # Check for Content-Type (always present)
         assert "Content-Type" in response.headers
-        
+
         # Check for either Content-Length or Transfer-Encoding (both are valid)
         has_content_length = "Content-Length" in response.headers
         has_transfer_encoding = "Transfer-Encoding" in response.headers
-        assert has_content_length or has_transfer_encoding, "Either Content-Length or Transfer-Encoding should be present"
-        
+        assert has_content_length or has_transfer_encoding, \
+            "Either Content-Length or Transfer-Encoding should be present"
+
         # Validate Date header is present
         assert "Date" in response.headers
-            
+
     with allure.step("Attach headers to report"):
         headers_info = dict(response.headers)
         allure.attach(str(headers_info), "Response Headers", allure.attachment_type.TEXT)
@@ -68,23 +69,23 @@ def test_user_list_schema_validation():
     with allure.step("Send GET request to user list endpoint"):
         url = f"{BASE_URL}/users?page=1"
         response = requests.get(url, headers=get_headers())
-        
+
     with allure.step("Verify response status is 200"):
         assert response.status_code == 200
-        
+
     with allure.step("Load and apply schema validation"):
         data = response.json()
         schema = load_schema("user_list_schema.json")
         validate(instance=data, schema=schema)
-        
+
     with allure.step("Validate specific data structure"):
         assert "data" in data
         assert "page" in data
         assert "per_page" in data
         assert "total" in data
         assert "total_pages" in data
         assert isinstance(data["data"], list)
-        
+
     with allure.step("Validate user objects in data array"):
         for user in data["data"]:
             assert "id" in user
@@ -95,7 +96,7 @@ def test_user_list_schema_validation():
             assert isinstance(user["id"], int)
             assert isinstance(user["email"], str)
             assert "@" in user["email"]  # Basic email validation
-            
+
     with allure.step("Attach response for verification"):
         allure.attach(response.text, "User List Response", allure.attachment_type.JSON)
 
@@ -114,15 +115,15 @@ def test_single_user_schema_validation():
     with allure.step("Send GET request to single user endpoint"):
         url = f"{BASE_URL}/users/2"
         response = requests.get(url, headers=get_headers())
-        
+
     with allure.step("Verify response status is 200"):
         assert response.status_code == 200
-        
+
     with allure.step("Load and apply schema validation"):
         data = response.json()
         schema = load_schema("single_user_schema.json")
         validate(instance=data, schema=schema)
-        
+
     with allure.step("Validate user data structure"):
         assert "data" in data
         assert "support" in data
@@ -132,12 +133,12 @@ def test_single_user_schema_validation():
         assert "first_name" in user_data
         assert "last_name" in user_data
         assert "avatar" in user_data
-        
+
     with allure.step("Validate support information"):
         support = data["support"]
         assert "url" in support
         assert "text" in support
-        
+
     with allure.step("Attach response for verification"):
         allure.attach(response.text, "Single User Response", allure.attachment_type.JSON)
 
@@ -157,15 +158,16 @@ def test_response_time_validation(endpoint):
     with allure.step(f"Send GET request to {endpoint}"):
         url = f"{BASE_URL}{endpoint}"
         response = requests.get(url, headers=get_headers())
-        
+
     with allure.step("Verify response status is 200"):
         assert response.status_code == 200
-        
+
     with allure.step("Validate response time is acceptable"):
         response_time = response.elapsed.total_seconds()
         # Expecting response within 5 seconds (configurable)
         max_response_time = config.get("timeout_seconds", 5)
-        assert response_time < max_response_time, f"Response time {response_time}s exceeded limit of {max_response_time}s"
-        
+        assert response_time < max_response_time, \
+            f"Response time {response_time}s exceeded limit of {max_response_time}s"
+
     with allure.step("Attach performance metrics"):
         allure.attach(f"Response Time: {response_time:.3f} seconds", "Performance Metrics", allure.attachment_type.TEXT)

tests/test_error_scenarios.py

@@ -29,15 +29,15 @@ def test_get_user_not_found():
     with allure.step("Send GET request for non-existent user"):
         url = f"{BASE_URL}/users/9999"
         response = requests.get(url, headers=get_headers())
-        
+
     with allure.step("Verify response status is 404"):
         assert response.status_code == 404
-        
+
     with allure.step("Verify response body is empty or contains error info"):
         # ReqRes API returns empty object for 404
         data = response.json()
         assert data == {}
-        
+
     with allure.step("Attach response details to report"):
         allure.attach(response.text, "404 Response Body", allure.attachment_type.JSON)
 
@@ -57,11 +57,11 @@ def test_get_user_invalid_id(invalid_id):
     with allure.step(f"Send GET request with invalid ID: {invalid_id}"):
         url = f"{BASE_URL}/users/{invalid_id}"
         response = requests.get(url, headers=get_headers())
-        
+
     with allure.step("Verify response indicates error or not found"):
         # API might return 404 or other error codes for invalid IDs
         assert response.status_code in [400, 404, 422]
-        
+
     with allure.step("Attach response details to report"):
         allure.attach(response.text, f"Invalid ID Response: {invalid_id}", allure.attachment_type.JSON)
 
@@ -80,7 +80,7 @@ def test_create_user_empty_payload():
     with allure.step("Send POST request with empty payload"):
         url = f"{BASE_URL}/users"
         response = requests.post(url, json={}, headers=get_headers())
-        
+
     with allure.step("Verify response (API may accept empty payload)"):
         # ReqRes API might accept empty payloads, so we check what actually happens
         if response.status_code == 201:
@@ -90,7 +90,7 @@ def test_create_user_empty_payload():
         else:
             # If API rejects empty payload, status should indicate error
             assert response.status_code in [400, 422]
-            
+
     with allure.step("Attach response details to report"):
         allure.attach(response.text, "Empty Payload Response", allure.attachment_type.JSON)
 
@@ -111,11 +111,11 @@ def test_create_user_invalid_json():
         headers = get_headers()
         # Send malformed JSON as string
         response = requests.post(url, data='{"name": "test", "job":}', headers=headers)
-        
+
     with allure.step("Verify response indicates bad request"):
         # Should return 400 Bad Request for malformed JSON
         assert response.status_code == 400
-        
+
     with allure.step("Attach response details to report"):
         allure.attach(response.text, "Invalid JSON Response", allure.attachment_type.JSON)
 
@@ -134,22 +134,22 @@ def test_invalid_endpoint():
     with allure.step("Send GET request to invalid endpoint"):
         url = f"{BASE_URL}/invalid-endpoint"
         response = requests.get(url, headers=get_headers())
-        
+
     with allure.step("Document API behavior for invalid endpoints"):
         # ReqRes API might return 200 with some default content for invalid endpoints
         # This is not uncommon for some APIs that have catch-all routes
         allure.attach(f"Status Code: {response.status_code}", "Response Status", allure.attachment_type.TEXT)
         allure.attach(response.text[:500], "Response Body (first 500 chars)", allure.attachment_type.TEXT)
-        
+
         # The test documents behavior rather than enforcing a specific status
         # This is valuable for API contract understanding
         if response.status_code == 200:
-            print(f"INFO: API returns 200 for invalid endpoint (common for some APIs)")
+            print("INFO: API returns 200 for invalid endpoint (common for some APIs)")
         elif response.status_code == 404:
-            print(f"INFO: API properly returns 404 for invalid endpoint")
+            print("INFO: API properly returns 404 for invalid endpoint")
         else:
             print(f"INFO: API returns {response.status_code} for invalid endpoint")
-            
+
         # Always pass - this test is for documentation/exploration
         assert True, "Test passes - documents API behavior for invalid endpoints"
 
@@ -169,15 +169,15 @@ def test_malformed_url():
         # Use a very high user ID that definitely doesn't exist
         url = f"{BASE_URL}/users/999999"
         response = requests.get(url, headers=get_headers())
-        
+
     with allure.step("Verify response indicates not found"):
         # ReqRes API returns 404 for non-existent user IDs
         assert response.status_code == 404
-        
+
     with allure.step("Verify response body indicates not found"):
         # Should return empty object for 404
         data = response.json()
         assert data == {}
-        
+
     with allure.step("Attach response details to report"):
         allure.attach(response.text, "Non-existent User Response", allure.attachment_type.JSON)